Rescanning

After you fix identified vulnerabilities, you can rescan the same application multiple times to verify your fixes and overwrite previous results. For DAST scans, you can choose from three scan modes: Full scan for complete coverage, Retest only to confirm fixes, or Incremental scan for changed areas only. For SAST and SCA scans, you can upload an updated archive file.

About this task

The following conditions apply to the rescan option:
  • You must rescan the same application as you originally scanned. To scan a different application, you must start a new scan.
  • You must not delete the previous scan. Use Rescan to overwrite it. Deleting a scan removes it from the records and voids the rescan option.
  • For pay-per-scan plans: Rescans are charged as separate scans.
  • If the Presence used for the original DAST scan was deleted or is unavailable, you must select a valid Presence before continuing.

Procedure

To rescan your application:
  1. You can access the Rescan option in one of the following ways:
    1. In the Scans and sessions views, click the vertical three-dot menu Vertical three-dot menu of any scan listed under the All, DAST, SAST, or SCA tabs, then click Rescan.
    2. Applications > Application name > Scans and sessions. In the Scans and sessions views, click the vertical three-dot menu Vertical three-dot menu of any scan listed under the All, DAST, SAST, or SCA tabs, then click Rescan.
    3. In the single scan view, from the Manage scan drop-down, click Rescan.

    The Rescan dialog opens with sidebar options for configuring your rescan.

  2. For DAST scans, under Scan mode, select one of the following options:
    • Full scan — Scans the whole site for full coverage and the most complete results. Use this mode when you want to ensure complete site coverage and identify any new or missed vulnerabilities.
    • Retest only — Scans only the areas where vulnerabilities were previously found. Use this mode to quickly verify that your fixes have resolved the identified issues.
    • Incremental scan — Scans only the parts of the application that have changed since the last scan. Use this mode to check for new vulnerabilities in modified areas of your application.
    Note:
    Whether you perform a Full, Retest only, or Incremental scan, each action creates a new scan execution.
  3. For SAST and SCA scans, follow the same steps that you use to create a scan.
  4. Click the Scan options tab to configure common scan settings as needed.
  5. Click the Summary tab to review the scan configuration.

    Verify all settings are correct before proceeding.

  6. Click Rescan to start the rescan.

    The scan begins and you can monitor its progress on the Scans and sessions page.

What to do next

  • After the scan completes, you can view the results on the Scans and sessions page. The dashboard displays the current scan results, which overwrite the previous scan results.
  • To compare results from different scan modes or identify newly resolved vulnerabilities, review the vulnerability reports and trends.